stealc | a2a164a1ce5ac806bda72adbc456553d96b36c6eb3fff5b6f2700a94a19df93a | Triage

Sharing

General

Target

2648-3-0x0000000000160000-0x00000000007F0000-memory.dmp
Size

6.6MB
Sample

241212-x7dejavmdz
MD5

77fcdb14d0396448dd2bb983a95d13c5
SHA1

f238b7a45cba5f62e331c688961f37d32c430a0d
SHA256

a2a164a1ce5ac806bda72adbc456553d96b36c6eb3fff5b6f2700a94a19df93a
SHA512

1bcec16b7617a0dfd8ec456ba729101d37e27281e5819178c10996e7a943ae12e53b0b32cabe78e2b74bce38e76f972921c95d4db4906adfec1240885f4598da
SSDEEP

98304:dJoegfdT7yzURgd/wIiHTnfquEsXKs3BU3o9kY4/kB:dJ6g+fzSuj6Cm3oG

Score

10^/10

stealc stok discovery stealer

Malware Config

Extracted

Family

stealc

Botnet

stok

C2

http://185.215.113.206

Attributes

url_path
/c4becf79229cb002.php

Targets

- Target
  
  2648-3-0x0000000000160000-0x00000000007F0000-memory.dmp
- Size
  
  6.6MB
- MD5
  
  77fcdb14d0396448dd2bb983a95d13c5
- SHA1
  
  f238b7a45cba5f62e331c688961f37d32c430a0d
- SHA256
  
  a2a164a1ce5ac806bda72adbc456553d96b36c6eb3fff5b6f2700a94a19df93a
- SHA512
  
  1bcec16b7617a0dfd8ec456ba729101d37e27281e5819178c10996e7a943ae12e53b0b32cabe78e2b74bce38e76f972921c95d4db4906adfec1240885f4598da
- SSDEEP
  
  98304:dJoegfdT7yzURgd/wIiHTnfquEsXKs3BU3o9kY4/kB:dJ6g+fzSuj6Cm3oG
Score

10^/10

stealc discovery stealer
- Stealc
  Stealc is an infostealer written in C++.
  stealer stealc
- Stealc family
  stealc
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

stealcdiscoverystealer